ADVERTISEMENT

Addition.txt

Windows 10 x64 - ntoskrnl.exe zużywa 100% dysku, jak to naprawić?

Witam kolegów i koleżanki, mam problem z plikiem ntoskrnl.exe, a dokładniej z jego pracą, nie wiem do czego on służy ale co chwila niezależnie czy korzystam z przeglądarki, czy też nie robię nic jego zużycie dysku oscyluje w okolicy 99%. Pomimo skanowania komputera programy zabezpieczające nie znajdują żadnych wirusów ani innych aplikacji które mogłyby wskazywać na zawirusowanie itp. Czy może ktoś wie jak ten plik naprawić ? http://obrazki.elektroda.pl/1592421700_1490092854_thumb.jpg


Download file - link to post

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Ran by Senegalczyk (21-03-2017 11:43:37)
Running from C:\Users\Senegalczyk\Downloads
Windows 10 Pro Version 1607 (X64) (2017-02-18 21:05:46)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1198377806-970561194-3184837281-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1198377806-970561194-3184837281-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1198377806-970561194-3184837281-1000 - Limited - Disabled) = & gt; C:\Users\defaultuser0
Guest (S-1-5-21-1198377806-970561194-3184837281-501 - Limited - Disabled)
Senegalczyk (S-1-5-21-1198377806-970561194-3184837281-1001 - Administrator - Enabled) = & gt; C:\Users\Senegalczyk

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with " Hidden " flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1198377806-970561194-3184837281-1001\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 1.1.377 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Reader 9.0.1 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90100000001}) (Version: 9.0.1 - Adobe Systems Incorporated)
Advanced SystemCare 10 (HKLM-x32\...\Advanced SystemCare_is1) (Version: 10.2.0 - IObit)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}) (Version: 1.5.17.25482 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.5.17.25482 - Alcor Micro Corp.) Hidden
ArcSoft TotalMedia 3.5 (HKLM-x32\...\{29E44E9D-ACB2-4D2D-849F-5361C941B7E1}) (Version: 3.5.7.282 - ArcSoft)
ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.8 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS MultiFrame (HKLM-x32\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0021 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.29 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0008 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS)
ASUS USB2.0 UVC VGA WebCam (HKLM\...\ASUS USB2.0 UVC VGA WebCam) (Version: 5.8.53120.203 - Sonix)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.19 - asus)
ASUS_Screensaver (HKLM-x32\...\ASUS_Screensaver) (Version: - )
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0002 - ASUS)
cFosSpeed v10.20 (HKLM\...\cFosSpeed) (Version: 10.20 - cFos Software GmbH, Bonn)
ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.5 - ASUS)
Driver Booster 4.2 (HKLM-x32\...\Driver Booster_is1) (Version: 4.2.0 - IObit)
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.5 - ASUS)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.110 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
IObit Malware Fighter 4 (HKLM-x32\...\IObit Malware Fighter_is1) (Version: 4.5 - IObit)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 6.0.3.16 - IObit)
IT9130 Driver v15.3.17.1 (HKLM-x32\...\IT9130 DriverInstaller_15.3.17.1) (Version: - )
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.5.8 - PandoraTV)
KMSpico (HKLM\...\{8B29D47F-92E2-4C20-9EE0-F710991F5D7C}_is1) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
NB Probe (HKLM-x32\...\{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}) (Version: - )
Net4Switch (HKLM-x32\...\{9D6D7811-43B3-463C-BC79-5D1755269989}) (Version: 1.00.0020 - ASUS)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.4 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
OpenOffice 4.1.3 (HKLM-x32\...\{4D71C348-C964-442D-B2DB-5160E46FB664}) (Version: 4.13.9783 - Apache Software Foundation)
Panel sterowania NVIDIA 342.01 (Version: 342.01 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.)
Smart Defrag 5 (HKLM-x32\...\Smart Defrag_is1) (Version: 5.5.0 - IObit)
System Ninja version 3.1.6 (HKLM-x32\...\{6E67710E-206D-43AB-BF21-E7CD63056C55}_is1) (Version: 3.1.6 - SingularLabs)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.29.0 - ASUS)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.15 - ASUS)
Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.5.2014.3 - URSoft, Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00912E83-5D8A-4C9D-8BCE-63962C03034F} - System32\Tasks\IObitSelfCheckTask = & gt; C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe [2016-10-18] (IObit)
Task: {0A00F584-1F6B-47D6-B161-EFF10B753B75} - System32\Tasks\Net4Switch = & gt; C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe [2009-09-23] (ASUS)
Task: {20C9EB2E-6FE3-4420-951B-65E5EFF61C1C} - System32\Tasks\AutoPico Daily Restart = & gt; C:\Program Files\KMSpico\AutoPico.exe [2016-01-11] (@ByELDI)
Task: {54DAD53A-63A4-4F2A-BC89-94CEDEC141EC} - System32\Tasks\Driver Booster SkipUAC (Senegalczyk) = & gt; C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe [2017-01-10] (IObit)
Task: {572F2508-A58C-4765-89A8-E3701734F2FC} - \ASC10_SkipUac_Senegalczyk - & gt; No File & lt; ==== ATTENTION
Task: {5A1D3024-8AF0-4E3B-BDB3-0F66569B14B9} - System32\Tasks\GoogleUpdateTaskMachineUA = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {5B23FA7E-FD3E-463A-9A69-BC2FC9FB099A} - System32\Tasks\ACMON = & gt; C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK)
Task: {5D1CC3D0-8C15-4FCF-8C10-AE1FCE4B9C83} - \SmartDefrag_Update - & gt; No File & lt; ==== ATTENTION
Task: {5F52B91E-DCE0-444D-999B-B3E9DA86B2D5} - System32\Tasks\Driver Booster Scheduler = & gt; C:\Program Files (x86)\IObit\Driver Booster\4.2.0\Scheduler.exe [2016-12-14] (IObit)
Task: {6EBD5C07-E25B-4DC5-9949-DC9727209EED} - System32\Tasks\SmartDefrag_AutoAnalyze = & gt; C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [2016-06-06] (IObit)
Task: {760D83AB-9444-4B4F-BCBB-E96595CE3331} - System32\Tasks\ASUS SmartLogon Console Sensor = & gt; C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS)
Task: {765C62BB-B34C-4D7F-9F86-FBA9F4B7F873} - \RtHDVBg_ListenToDevice - & gt; No File & lt; ==== ATTENTION
Task: {8BD31347-1BE9-48FE-8F4E-60F176F98086} - System32\Tasks\CreateExplorerShellUnelevatedTask = & gt; C:\Windows\Explorer.EXE /NOUACCHECK
Task: {A958EA34-9082-4DDA-8B5C-607CF7E55CA9} - System32\Tasks\ASUS P4G = & gt; C:\Program Files\P4G\BatteryLife.exe [2010-01-12] (ATK)
Task: {AA2ED19B-D6A1-4F85-A269-B384CD639C26} - System32\Tasks\GoogleUpdateTaskMachineCore = & gt; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {BE36C718-B70D-4496-BC68-3EDCAE179EF9} - \RTKCPL - & gt; No File & lt; ==== ATTENTION
Task: {C9FFCAF1-CAA2-4FF5-A774-A793EA8A3798} - \{5F27E0E8-6283-44F1-BA17-83D7DD192A28} - & gt; No File & lt; ==== ATTENTION
Task: {CBD5E63A-B7F4-40FA-8816-CAB73DC6EF6E} - System32\Tasks\SmartDefrag_Startup = & gt; C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [2017-02-17] (IObit)
Task: {CD3F7EB2-0F28-409B-99B6-5A29DF2055A8} - System32\Tasks\ASUS Live Update = & gt; C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {CEEC36B8-F44A-4897-9B3A-3ABF967A3858} - System32\Tasks\ASUSControlDeck = & gt; C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-11-24] ()
Task: {D5B3B038-0687-4978-B148-D9B37BA2E9E1} - System32\Tasks\ASC10_PerformanceMonitor = & gt; C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [2016-12-05] (IObit)
Task: {DE5177DB-547B-4B63-A372-CDBD612E6F84} - System32\Tasks\WC3 = & gt; C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-01-04] ()
Task: {E0BFB6F9-0F57-4B43-B995-FAE8550F3FE0} - System32\Tasks\cFos\Registration Tasks\Open Browser = & gt; launchwinapp.exe " hxxp://www.cfos.de/pl/cfosspeed/expiration-message.htm?sw-10.20.2282 & amp;days=0 & amp;ret=0 & amp;raw=13 & amp;exp=103 "

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job = & gt; C:\Windows\explorer.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2017-03-21 10:59 - 2016-11-14 12:15 - 00135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-27 20:09 - 2016-10-27 20:09 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2017-02-19 16:16 - 2007-08-03 12:24 - 00125496 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
2017-03-21 09:48 - 2017-03-16 05:11 - 02885464 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.110\libglesv2.dll
2017-03-21 09:48 - 2017-03-16 05:11 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.110\libegl.dll
2017-03-15 22:22 - 2016-03-31 17:57 - 00625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2017-03-13 19:55 - 2016-01-11 17:03 - 00899872 _____ () C:\Program Files (x86)\IObit\Smart Defrag\webres.dll
2017-03-13 19:55 - 2016-01-11 17:02 - 00630048 _____ () C:\Program Files (x86)\IObit\Smart Defrag\ProductStatistics.dll
2017-03-12 10:28 - 2016-08-18 18:43 - 00442144 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madExcept_.bpl
2017-03-12 10:28 - 2016-08-18 18:43 - 00210720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madBasic_.bpl
2017-03-12 10:28 - 2016-08-18 18:43 - 00059680 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\madDisAsm_.bpl
2017-03-12 10:27 - 2016-11-01 10:11 - 00078624 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\GetProcessDLL.dll
2017-02-19 16:16 - 2007-09-14 10:00 - 00147456 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdiskex.dll
2017-02-19 16:16 - 2003-11-28 02:11 - 00135168 _____ () C:\Program Files\ASUS\NB Probe\SPM\spos.dll
2017-02-19 16:16 - 2005-08-29 15:24 - 00081920 _____ () C:\Program Files\ASUS\NB Probe\SPM\spnbacpi.dll
2017-02-19 16:16 - 2003-09-09 16:08 - 00049152 _____ () C:\Program Files\ASUS\NB Probe\SPM\spdmi.dll
2017-02-19 16:16 - 2006-04-04 10:24 - 00036864 _____ () C:\Program Files\ASUS\NB Probe\SPM\ghadmi.dll
2017-02-19 16:16 - 2005-04-07 19:25 - 00077824 _____ () C:\Program Files\ASUS\NB Probe\SPM\spmemory.dll
2017-03-12 10:28 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\webres.dll
2017-03-12 10:28 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\ProductStatistics.dll
2017-03-11 18:44 - 2016-06-21 19:30 - 00442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-03-11 18:44 - 2016-06-21 19:29 - 00210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-03-11 18:44 - 2016-06-21 19:29 - 00059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2017-03-11 18:44 - 2015-12-28 13:50 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2017-03-11 18:44 - 2016-09-26 13:59 - 00631072 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
2017-03-15 22:22 - 2016-03-31 17:57 - 00899872 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\webres.dll
2017-03-15 22:22 - 2016-03-31 17:57 - 00188704 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2017-03-15 22:22 - 2016-03-31 17:57 - 00151840 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2017-03-15 22:22 - 2016-03-31 17:57 - 00625440 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\ProductStatistics.dll
2017-03-12 10:28 - 2016-12-20 16:36 - 01362720 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare\Scan.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [152]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The " AlternateShell " will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP_TDI = & gt; " " = " Driver Group "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Schedule = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec = & gt; " " = " Service "
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Schedule = & gt; " " = " Service "

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 12:47 - 2017-03-12 10:30 - 00001372 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 www.asc55.iobit.com
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
127.0.0.1 www.iana.org
127.0.0.1 iana.org
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 98.129.229.186
127.0.0.1 www.iana.org
127.0.0.1 iana.org

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1198377806-970561194-3184837281-1001\Control Panel\Desktop\\Wallpaper - & gt; C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 37.8.214.2 - 31.11.202.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System = & gt; (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: Adobe Reader Speed Launcher = & gt; " C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe "
MSCONFIG\startupreg: ADSMTray = & gt; C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
MSCONFIG\startupreg: ASUS Screen Saver Protector = & gt; C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: RtHDVCpl = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
HKLM\...\StartupApproved\StartupFolder: = & gt; " FancyStart daemon.lnk "
HKLM\...\StartupApproved\StartupFolder: = & gt; " TMMonitor.lnk "
HKLM\...\StartupApproved\Run: = & gt; " WindowsDefender "
HKLM\...\StartupApproved\Run: = & gt; " ETDCtrl "
HKLM\...\StartupApproved\Run: = & gt; " NvBackend "
HKLM\...\StartupApproved\Run: = & gt; " ShadowPlay "
HKLM\...\StartupApproved\Run: = & gt; " AmIcoSinglun64 "
HKLM\...\StartupApproved\Run32: = & gt; " ATKMEDIA "
HKLM\...\StartupApproved\Run32: = & gt; " ATKOSD2 "
HKLM\...\StartupApproved\Run32: = & gt; " HControlUser "
HKU\S-1-5-21-1198377806-970561194-3184837281-1001\...\StartupApproved\Run: = & gt; " OneDrive "

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] = & gt; (Allow) LPort=139
FirewallRules: [{93D9DB00-5BFB-4152-93BB-D7963C828C2A}] = & gt; (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{4C09D81A-3750-44D6-9EE1-A6EECA96A438}] = & gt; (Allow) C:\Program Files (x86)\ArcSoft\TotalMedia 3.5\TotalMedia.exe
FirewallRules: [{7D10CCC5-1402-4180-BB5F-FEBCC4610199}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A50ADD46-D929-40BF-AC67-7B192F191AFD}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A4694B3A-91AF-4A30-99EE-176BB647064A}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5D1C1D38-7C17-45BA-9119-B4F41A306BAA}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7A704B90-0F18-4CBF-9DBE-E3F68D598503}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0FE2EF3C-30DA-4EEE-AA3A-626DA4603278}] = & gt; (Allow) C:\Users\Senegalczyk\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6F6C6E60-3FD2-4D71-9C15-06632415D418}] = & gt; (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{B1E85C1A-5E8D-48DA-8F9F-B4A7A1287227}] = & gt; (Allow) C:\Program Files (x86)\IObit\Advanced SystemCare\Surfing Protection\FFNativeMessage.exe
FirewallRules: [{286E5884-D469-4875-A3BB-2561458A9597}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{2ADF808E-D199-408D-8A17-6D94BACE2AFD}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DriverBooster.exe
FirewallRules: [{E6052D42-5106-4BE2-81FA-3E810A1F5C4F}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{0FED4ED5-483A-4B88-9D82-3253FCAB2416}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\DBDownloader.exe
FirewallRules: [{18A3718E-776F-4658-A860-7F73F9FC392C}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [{89EA2B6E-CF06-4CB5-947C-D793A1778026}] = & gt; (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.2.0\AutoUpdate.exe
FirewallRules: [TCP Query User{FCA2B195-9115-426C-A10A-11AAB83BAC88}C:\users\senegalczyk\appdata\roaming\utorrent\updates\3.4.9_43388.exe] = & gt; (Block) C:\users\senegalczyk\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [UDP Query User{38153155-C116-43AF-9E15-6FA7B6480ECD}C:\users\senegalczyk\appdata\roaming\utorrent\updates\3.4.9_43388.exe] = & gt; (Block) C:\users\senegalczyk\appdata\roaming\utorrent\updates\3.4.9_43388.exe
FirewallRules: [{702CE7FF-3C61-4C4B-9181-EE2DF86959F8}] = & gt; (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

12-03-2017 11:26:44 Scheduled Checkpoint
13-03-2017 19:02:04 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
13-03-2017 19:08:51 Installed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
13-03-2017 19:11:32 Zainstalowano: OpenOffice 4.1.3
20-03-2017 18:24:34 Windows Update
20-03-2017 22:09:44 Removed ASUS Data Security Manager

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/21/2017 11:37:38 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Błąd podczas aktualizowania stanu na wartość SECURITY_PRODUCT_STATE_ON (błąd %3).

Error: (03/21/2017 11:01:23 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla " c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll " . Błąd w pliku manifestu lub w pliku zasad " c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll " w wierszu 3.
Wartość " MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR " atrybutu " version " elementu " assemblyIdentity " jest nieprawidłowa.

Error: (03/21/2017 10:52:01 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Błąd podczas aktualizowania stanu na wartość SECURITY_PRODUCT_STATE_ON (błąd %3).

Error: (03/21/2017 10:45:21 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINRG-EOQM9VG)
Description: Aktywacja aplikacji Microsoft.Getstarted_4.5.6.0_x64__8wekyb3d8bbwe:App.AppX7mv0s3r0wanj0n66dy6vax24ps6avzvz.mca nie powiodła się. Błąd: -2144927149. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.

Error: (03/21/2017 10:45:03 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINRG-EOQM9VG)
Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2147023170. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.

Error: (03/21/2017 10:38:41 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ADMINRG-EOQM9VG)
Description: Aktywacja aplikacji Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI nie powiodła się. Błąd: -2144927142. Więcej informacji można znaleźć w dzienniku Microsoft-Windows-TWinUI/Działa.

Error: (03/21/2017 10:32:23 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Przetwarzanie wywołania OnIdentity() w obiekcie System Writer przez Usługi kryptograficzne nie powiodło się.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (03/21/2017 10:30:47 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Błąd Usługi kopiowania woluminów w tle: nieoczekiwany błąd podczas badania interfejsu IVssWriterCallback. hr = 0x80070005, Access is denied.
.
To jest często spowodowane przez niepoprawne ustawienia zabezpieczeń w procesie zapisującym lub żądającym.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {b8215c24-89cb-42d4-8821-3cf9ae618a7c}

Error: (03/21/2017 09:42:06 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Błąd podczas aktualizowania stanu na wartość SECURITY_PRODUCT_STATE_ON (błąd %3).

Error: (03/20/2017 10:54:12 PM) (Source: SideBySide) (EventID: 63) (User: )
Description: Nie można wygenerować kontekstu aktywacji dla " c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll " . Błąd w pliku manifestu lub w pliku zasad " c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll " w wierszu 3.
Wartość " MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR " atrybutu " version " elementu " assemblyIdentity " jest nieprawidłowa.


System errors:
=============
Error: (03/21/2017 11:35:46 AM) (Source: DCOM) (EventID: 10016) (User: ADMINRG-EOQM9VG)
Description: Zgodnie z ustawieniami uprawnienia application-specific nie jest udzielane uprawnienie Local Launch do aplikacji serwera COM z identyfikatorem klasy CLSID
{7022A3B3-D004-4F52-AF11-E9E987FEE25F}
i identyfikatorem aplikacji APPID
{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}
użytkownikowi ADMINRG-EOQM9VG\Senegalczyk o identyfikatorze zabezpieczeń SID (S-1-5-21-1198377806-970561194-3184837281-1001) z adresu LocalHost (Using LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Unavailable (Unavailable). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe.

Error: (03/21/2017 11:35:21 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Zgodnie z ustawieniami uprawnienia application-specific nie jest udzielane uprawnienie Local Activation do aplikacji serwera COM z identyfikatorem klasy CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
i identyfikatorem aplikacji APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
użytkownikowi NT AUTHORITY\SYSTEM o identyfikatorze zabezpieczeń SID (S-1-5-18) z adresu LocalHost (Using LRPC) działającemu w kontenerze aplikacji o identyfikatorze SID Unavailable (Unavailable). To uprawnienie zabezpieczeń można modyfikować przy użyciu narzędzia administracyjnego Usługi składowe.

Error: (03/21/2017 11:33:15 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Inicjowanie zrzutu awaryjnego nie powiodło się!

Error: (03/21/2017 11:32:21 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Menedżer sterowania usługami próbował podjąć akcję korekcyjną (Restart the service) po nieoczekiwanym zakończeniu usługi Windows Search, ale ta akcja nie powiodła się przy następującym błędzie:
Jedno wystąpienie usługi już działa.
.

Error: (03/21/2017 11:31:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Windows Modules Installer niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 120000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service.

Error: (03/21/2017 11:31:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa spmgr niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.

Error: (03/21/2017 11:31:52 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa NVIDIA Display Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.

Error: (03/21/2017 11:31:51 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service.

Error: (03/21/2017 11:31:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa LiveUpdate niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.

Error: (03/21/2017 11:31:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Usługa Elan Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6670 @ 2.20GHz
Percentage of memory in use: 36%
Total physical RAM: 4095.27 MB
Available physical RAM: 2595.62 MB
Total Virtual: 8191.27 MB
Available Virtual: 5895.58 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:286.44 GB) (Free:219.59 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 00029402)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=286.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11.3 GB) - (Type=05)

==================== End of Addition.txt ============================